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Intellectual Property Rights 



IPRs essential or potentially essential to the present document may have been declared to ETSI. The information 
pertaining to these essential IPRs, if any, is publicly available for ETSI members and non-members, and can be found 
in ETSI SR 000 314: "Intellectual Property Rights (IPRs); Essential, or potentially Essential, IPRs notified to ETSI in 
respect of ETSI standards", which is available from the ETSI Secretariat. Latest updates are available on the ETSI Web 
server ( http://webapp.etsi.org/IPR/home.asp ). 

Pursuant to the ETSI IPR Policy, no investigation, including IPR searches, has been carried out by ETSI. No guarantee 
can be given as to the existence of other IPRs not referenced in SR 000 314 (or the updates on the ETSI Web server) 
which are, or may be, or may become, essential to the present document. 



Foreword 



This Technical Specification (TS) has been produced by ETSI Project Telecommunications and Internet Protocol 
Harmonization Over Networks (TIPHON). 



Introduction 



The purpose of this H.248/MEGACO package is to extend the currently available standard packages to allow control of 
Quality of Service and Media Firewall functions using the H.248/MEGACO protocol. It complements the Release 4 
H.248/MEGACO Technology Mapping for Reference Point N (see TS 101 885 [1]). 
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Scope 



The present document is applicable to TIPHON reference point 13 and provides a H.248/MEGACO Package for use in 
implementing the relevant interface. 
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Figure 1 : Entities involved in control over the reference point 
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3 Definitions 

For the purposes of the present document, the following term and definition applies: 
middlebox: physical implementation of an Interconnect Function (ICF) 

4 Middlebox Package 

Package ID: EMP (Ox????). 

Version : 1 . 

Extends: None. 

This package defines a property to enable the MGC to act as a MIDCOM Agent and control a "gateway" acting as a 
Middlebox. 

4.1 Properties 

1) Interface ID 

Description: a MB can have a number of logical interfaces, each of which is associated with an IP 
addressing space/range external to the MB. This property enables the controller to explicitly identify the 
logical interface that is applicable to the related ephemeral termination. 

- Property ID: iface (0x0001). 
Type: integer. 

- Possible Values: any. 

Defined in: termination state descriptor. 

- Characteristics: read/write. 

2) Token Rate 

Description: denotes the continually sustainable data rate (in Kbytes/second) against an ephemeral 
termination. In addition, the Middlebox requires a "bucket size" to be specified so that it can provide a Token 
Bucket in accordance with RFC 2216 [4]. It is assumed that the "bucket size" is specified external to this 
package (e.g. via management). Any packets that exceed the token bucket ((Token Rate x T) + (Bucket Size)) 
over a time period T shall be silently discarded by the Middlebox. However, the Middlebox shall report the 
number of discarded octets/packets - see Statistics. This parameter would typically be set against an 
external/untrusted ephemeral. Absence of this parameter means that no rate checking is performed against the 
ephemeral termination. 

- Property ID: tokenrate (0x0002). 

- Type: Integer. 

- Possible Values: 0-65535. 

Defined in: termination state descriptor. 

- Characteristics: read/write. 
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3) Pin-Hole Time To Live 

Description: denotes the TTL of the pin-hole (in seconds). If absent, an infinite TTL shall be assumed. 

- Property ID: phttl (0x0003). 
Type: 32bit Integer. 

- Possible Values: any. 

Defined in: local control descriptor. 

- Characteristics: read/write. 

NOTE: It can be derived from SDP as well. SDP allows the use of send and receive only flows which provides 
the means to give a choose on the addresses on the middlebox. 

4.2 Events 

1) Pin-Hole Timer Expired 

- Event ID: phtoexp (OxOOOA). 

- Event Description Parameters: None. 

- Observed Event Description Parameters: None. 

4.3 Signals 

None. 

4.4 Statistics 

1) Packets Discarded 

- Statistic ID: pd (xOOOl). 

Description: Denotes the number of packets (against the ephemeral termination) silently discarded by the 
Middlebox. The packets may have been discarded either due to failing a source address/port check or if the 
flow rate exceeds the pre-determined Bandwidth Context. 

- Type: UINT64. 

- Possible Values: Any. 

2) Octets Discarded 

- Statistic ID: od (x0002). 

Description: Denotes the number of octets silently discarded (against the ephemeral termination) by the 
Middlebox. 

- Type: UINT64. 

- Possible Values: Any. 

It should also be noted that it is assumed that statistics relating to transmitted packets and octets is obtained (inter alia) 
via the existing NETWORK and RTP Package statistics. 
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4.5 Procedures 



The Interconnect Function (ICF) may be viewed as an IP -IP Packet-Packet GW. The ICF shall support a number of 
logical interfaces (typically 2) - each interface being associated with a given IP address range. The IP ranges may be 
any mixture of public and private addressing ranges. Domains with overlapping address ranges may be supported. 

A flow is a bi-directional connection between two logical channels, normally RTP in one direction and RTCP in the 
other direction. To enable a flow through the ICF, the controller must request the creation of two ephemeral 
terminations, specifying the logical interface in each case. On receipt of such a request the ICF shall select IP addresses 
from the ranges appropriate to each logical interface and inform the controller accordingly. The token rate for a flow is 
set up against an ephemeral termination and represents the bandwidth available to the sum of all flows on that 
termination. Each flow is represented by an H.248 stream. As is customary for H.248, the source and destination 
addresses of a flow are held in the local descriptor and remote descriptor of the termination that acts as the source or 
sink for the flow. 

On a per flow basis, filtering of packets may be enabled/disabled by appropriate wildcarding of the IP addresses in the 
local descriptor. When address translation is used, the ICF shall for a termination that sources the flow overwrite the 
source/sink address of IP packets with those assigned to the remote descriptor. When packets from a sinked flow do not 
match the source and sink addresses as specified in the local descriptor the packet shall be silently discarded. 

A flow may be stopped by: 

1) setting the remote descriptor to zero within a stream and setting reservegroup and reservevalue to "false"; 

2) changing the mode property of the localcontrol descriptor to "inactive". 



Formal syntax 



As in RFC 3015 [3], the package described in this draft may be encoded as ASN.l or augmented Backus-Naur Form 
(BNF) (see RFC 2234 [2]). 
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